Business Continuity Management Tool

The Vendor is required to provide for the Business Continuity Management Tool (BCM) initiative.
- The solution will deliver and centralize the following:
•    Emergency management
•    Crisis management and communication
•    Business continuity
•    Disaster recovery
- A cloud-based, independent solution will allow key stakeholders to access plans, coordinate responses, and communicate effectively, ensuring quick recovery and continued delivery of critical agency services to injured workers.
- Provides a unified platform for planning, incident management & crisis communication that will reduce silos and increase coordination across response areas.
- Immediate, targeted, and consistent messaging across multiple channels to impact teams, leadership and interested parties, providing minimal confusion, downtime and reputational risk.
- Holistic views on impact/ risk analysis, post incident action planning, and program health monitoring providing valuable insights.
- Customer Satisfaction: The solution continues to meet or exceed performance expectations, as determined through periodic reviews.
- Provide User Stories/Test Cases and Test Scripts where applicable.
- Provide operational support knowledge transfer for Administrator, Technical Support, and End-User roles. Clearly define knowledge transfer opportunities including eLearning, instructor-led sources, knowledge bases, and operation manuals.
- The warranty must include, at a minimum:
o    Correction of defects, bugs, or workmanship issues at no additional cost.
o    Resolution of performance or compatibility issues related to delivered components.
o    Defined response and resolution timeframes.
o    Conditions under which warranty coverage may be void, extended, or transferred.
- Project Manager
•    Leads and manages day-to-day aspects of the project, including scope, resource, quality, change, issue, and risk management.
•    Leads project planning, creating the project charter and quality plan.
•    Identifies, resolves, and escalates risks and issues, as required.
•    Coordinates project resources.
•    Develops change requests, as required.
- Supports access restrictions based on geolocation or IP address (Azure Conditional Access acceptable)
- Automatically terminates user sessions after configurable timeout
- Governs authorization to an system using Active Directory or Entra ID groups (RBAC)
- Supports Single Sign-On (SSO) using Azure Entra ID
- Enables limiting sensitive information so it’s accessible only to the appropriate individuals.
- Uses least-privilege (dedicated) database service accounts/service principals
- Supports step-up authentication for sensitive functions.